Jared Thompson
May 24, 20222 min
Updated: Jul 7, 2023
Businesses are being urged to protect themselves against common cyber threats as the latest DCMS report finds many firms are missing out on getting certified with Cyber Essentials.
The Government’s Cyber Security Breaches Survey reported that just 6% of businesses had completed the certification, with only 1% completing the second tier of Cyber Essentials Plus.
The report is an influential research study for UK cyber resilience, aligning with the National Cyber Strategy, which found the average annual cost for (medium and large) businesses is £19,400 in lost data or assets after breaches.
Whilst 43% of businesses said they have an insurance policy that covers cyber risks, many don’t realise that by completing Cyber Essentials you are eligible for free cyber insurance cover which could save you up to £25,000.
Cyber Essentials is a simple and effective Government-backed scheme supported by industry experts and the Cyber Resilience Centre. The scheme helps you put measures in place to protect your organisation, regardless of size or sector, against a range of the most common cyber-attacks.
Cyber Essentials is now mandatory for all businesses seeking specific government contracts. Without Cyber Essentials, you will not be able to bid for such contracts, as many of these contracts will involve delivering certain IT products and services and handling personal information.
The types of Government contracts where your business will be required to:
Deliver IT services or products that are designed to process, transfer or store data at an official level.
Handle the personal information of any UK citizens, i.e. home addresses or bank details.
Handling government employees' personal information, ministers, or advisors, i.e. expenses or payroll.
Cyber Essentials certification has been mandated for businesses entering into contracts, forcing you to demonstrate you have achieved the set standards and can demonstrate that you have met the scheme's technical requirements.
If your organisation wants to bid for government contracts that involve any of the characteristics mentioned above, you need to complete your Cyber Essentials certification first and not wait until the last minute to make your application.
The cost of Cyber Essentials (verified self-assessment) starts at £300 + VAT, and the cost of a Cyber Essentials Plus assessment is dependent on the size and complexity of your network.
While micro businesses and organisations will continue to pay the current £300 assessment charge, small, medium and large organisations will pay a little more. - NCSC December 2021
The Cyber Resilience Centre works with five key Cyber Essentials Partners who can help you complete your cyber essentials certification; contact us today, and you can get certified.
Earlier this year, the new update for Cyber Essentials was officially released; this update is the biggest overhaul of the scheme’s technical controls since it was first launched in 2014. The update helps businesses maintain basic cyber hygiene alongside this change in working behaviours and provide reassurance for clients, managers and employees.
For more information on these technical changes, download our PDF, and for more information on acquiring Cyber Essentials certification, visit our Cyber Essentials Partners.